SUSE-SU-2019:2103-1

Опубликовано: 09 авг. 2019

Источник: suse-cvrf

Описание

Security update for wireshark

This update for wireshark to version 2.4.16 fixes the following issues:

Security issue fixed:

CVE-2019-13619: ASN.1 BER and related dissectors crash (bsc#1141980).

Список пакетов

Image SLES15-SP3-SAP-Azure-LI-BYOS-Production

wireshark-2.4.16-3.31.1

Image SLES15-SP3-SAP-Azure-VLI-BYOS-Production

wireshark-2.4.16-3.31.1

Image SLES15-SP4-SAP-Azure-LI-BYOS

wireshark-2.4.16-3.31.1

Image SLES15-SP4-SAP-Azure-LI-BYOS-Production

wireshark-2.4.16-3.31.1

Image SLES15-SP4-SAP-Azure-VLI-BYOS

wireshark-2.4.16-3.31.1

Image SLES15-SP4-SAP-Azure-VLI-BYOS-Production

wireshark-2.4.16-3.31.1

Image SLES15-SP5-SAP-Azure-LI-BYOS

wireshark-2.4.16-3.31.1

Image SLES15-SP5-SAP-Azure-LI-BYOS-Production

wireshark-2.4.16-3.31.1

Image SLES15-SP5-SAP-Azure-VLI-BYOS

wireshark-2.4.16-3.31.1

Image SLES15-SP5-SAP-Azure-VLI-BYOS-Production

wireshark-2.4.16-3.31.1

SUSE Linux Enterprise Module for Basesystem 15

libwireshark9-2.4.16-3.31.1

libwiretap7-2.4.16-3.31.1

libwscodecs1-2.4.16-3.31.1

libwsutil8-2.4.16-3.31.1

wireshark-2.4.16-3.31.1

SUSE Linux Enterprise Module for Basesystem 15 SP1

libwireshark9-2.4.16-3.31.1

libwiretap7-2.4.16-3.31.1

libwscodecs1-2.4.16-3.31.1

libwsutil8-2.4.16-3.31.1

wireshark-2.4.16-3.31.1

SUSE Linux Enterprise Module for Desktop Applications 15

wireshark-devel-2.4.16-3.31.1

wireshark-ui-qt-2.4.16-3.31.1

SUSE Linux Enterprise Module for Desktop Applications 15 SP1

wireshark-devel-2.4.16-3.31.1

wireshark-ui-qt-2.4.16-3.31.1

Ссылки

https://www.suse.com/support/update/announcement/2019/suse-su-20192103-1/
Link for SUSE-SU-2019:2103-1
https://lists.suse.com/pipermail/sle-security-updates/2019-August/005808.html
E-Mail link for SUSE-SU-2019:2103-1
https://www.suse.com/support/security/rating/
SUSE Security Ratings
https://bugzilla.suse.com/1141980
SUSE Bug 1141980
https://www.suse.com/security/cve/CVE-2019-13619/
SUSE CVE CVE-2019-13619 page

Описание

In Wireshark 3.0.0 to 3.0.2, 2.6.0 to 2.6.9, and 2.4.0 to 2.4.15, the ASN.1 BER dissector and related dissectors could crash. This was addressed in epan/asn1.c by properly restricting buffer increments.

Затронутые продукты

Image SLES15-SP3-SAP-Azure-LI-BYOS-Production:wireshark-2.4.16-3.31.1

Image SLES15-SP3-SAP-Azure-VLI-BYOS-Production:wireshark-2.4.16-3.31.1

Image SLES15-SP4-SAP-Azure-LI-BYOS-Production:wireshark-2.4.16-3.31.1

Image SLES15-SP4-SAP-Azure-LI-BYOS:wireshark-2.4.16-3.31.1

Ссылки

https://www.suse.com/security/cve/CVE-2019-13619.html
CVE-2019-13619
https://bugzilla.suse.com/1141980
SUSE Bug 1141980

SUSE-SU-2019:2103-1

Описание

Список пакетов

Image SLES15-SP3-SAP-Azure-LI-BYOS-Production

Image SLES15-SP3-SAP-Azure-VLI-BYOS-Production

Image SLES15-SP4-SAP-Azure-LI-BYOS

Image SLES15-SP4-SAP-Azure-LI-BYOS-Production

Image SLES15-SP4-SAP-Azure-VLI-BYOS

Image SLES15-SP4-SAP-Azure-VLI-BYOS-Production

Image SLES15-SP5-SAP-Azure-LI-BYOS

Image SLES15-SP5-SAP-Azure-LI-BYOS-Production

Image SLES15-SP5-SAP-Azure-VLI-BYOS

Image SLES15-SP5-SAP-Azure-VLI-BYOS-Production

SUSE Linux Enterprise Module for Basesystem 15

SUSE Linux Enterprise Module for Basesystem 15 SP1

SUSE Linux Enterprise Module for Desktop Applications 15

SUSE Linux Enterprise Module for Desktop Applications 15 SP1

Ссылки

Уязвимость: CVE-2019-13619

Описание

Затронутые продукты

Ссылки